Jump to content

Anonym Potato

Members
  • Content Count

    17
  • Joined

  • Last visited

Community Reputation

1 Neutral

About Anonym Potato

  • Rank
    Member

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. How can I uninstall Enpass on my Linux (Ubuntu 19.04) machine?
  2. I just moved to MiniKeePass. This app is a bit outdated, but because of a working security model still a much more secure alternative. It is really sad, but Enpass give no f** about security. Still no security audit for iOS, master keys stored on the flash memory, secondary keys stored in primary database.
  3. Why don't you open source your code? Open source don't mean free, and I don't think that a lot of people would build the software from the source code. Nobody is wasting so much time, to save 12€. Enpass is cheap as hell, and no one, would pirate it.
  4. Do you know, if there is any good Keepass Port for iOS? I like, MiniKeePass, but the project seems to be dead.
  5. Hello, I am relatively new to Enpass, I noticed, that after reboot, I can use the PIN to access my fault. How can this be secure? This means that the Masterpassword is stored locally on the flash memory. This and the fact, that there have never been an security audit for iOS really worries me. Can someone explain to me, how this might possibly secure? I have a feeling, that the reason, why there is no security audit is, that they know, that there is no way there application passes the audit.
  6. When does there comes an security audit for iOS?
  7. Just found the solution by myself: below the "Share" button there is a "..." When you tap it, you get the Option "Add to Vault" > "Move"
  8. I am using Enpass for one day and I still having an hard time figuring out, how to do basic stuff. How can I move Objects from one fault to another?
  9. I just understood, that the problem was, that on the webdav was another db file. Problem solved.
  10. Hello, I just managed to enable webdav, but it still won't sync. I entered the right url username and password. I get an message: "Sync Error Password of data on WebDAV is required" When I tap on Resolve, I can enter the webdav password again. Afterwards it gives me an weird message: "Please note that after the sync, the password of data on WebDAV will be changed to password of "Tresor-Name" vault." What does this mean? What can I do? I am using an iPhone XR on the latest iOS version.
  11. Ok. I just bought the App vor MacOS and iOS. I hope Sinew will fix this soon. Until then, I will have to continue paying for 1Password. Why not add an feature like this as en add-on? I am sure there are a lot of people filling to pay 5€ to get more security. It is really sad, because this might be such an ideal way to get away from this multiple password manager work around.
  12. Because this adds an single point of failure. If the primary password is leaked, everything is leaked. Because there is information with different kind of security levels, this is essential. An other problem is, that in my company the use of PIN-codes and Biometric authentication like Touch-ID, is against the compliance we ensure customers. Also it is unsure if this is compliant with GDPR (because encryption keys are insufficient secured), which might result in fines up to 10.000.000 EUR (about 11.000.000 USD). It is the same Problem with 1Password. I don't get why this is still a thing. At the moment I am simply using multiple password managers. I hoped to be able to store everything in the same place. This features should not be so difficult to implement! Why is this no problem for everyone?
  13. This is so bad, because secondary faults would be ideal to store crypto seeds. Client information... so information that is extremely critical. When its key is stored in the primary vault, this means, it can be accessed with PIN or Touch-ID. Witch is not secure (and in a lot of cases, infringe compliance rules like ISO-norms and GDPR)
  14. But. why. Is this not an extremely dumb and insecure behaviour?
  15. Why is this feature still not implemented? Storing the password of the secondary fault in the primary fault and not giving any option to disable this, is just plain stupid and irresponsible.
×
×
  • Create New...